MDKSA-2002:039-1

Problem description

A Denial of Service attack was discovered by Mark Litchfield in the
Apache webserver. As well, while investigating this problem, the
Apache Software Foundation discovered that the code for handling
invalid requests that use chunked encoding may also allow arbitrary
code to be executed on 64bit architectures.
All versions of Apache prior to 1.3.26 and 2.0.37 are vulnerable to
this problem. A patched version of Apache is currently available for
Single Network Firewall 7.2, with patched versions of Apache soon to
be available for the other supported Mandrake Linux versions.